Apple has updated its Beats Studio Buds wireless earbuds to patch a high-severity vulnerability that could be exploited by nearby hackers to eavesdrop on users.
The vulnerability, tracked as CVE-2025-20701 (CVSS score: 8.8), refers to a case of incorrect authorization impacting the Airoha Bluetooth audio SDK that makes it possible to pair a Bluetooth audio device without user consent.
The Hacker News – Read More
Law enforcement and private partners took down 106 SocGholish C&C servers and domains as part of Operation Endgame.
The post 15,000 WordPress Websites Cleaned Up in SocGholish Botnet Takedown appeared first on SecurityWeek.
SecurityWeek – Read More
CISA has given federal agencies only three days to patch CVE-2026-20253, which can be exploited for unauthenticated remote code execution.
The post Splunk Enterprise Vulnerability Exploited in Attacks Days After Disclosure appeared first on SecurityWeek.
SecurityWeek – Read More
ESET Research shares the results of a months-long investigation into the suite of EDR killers maintained by the RaaS gang Gentlemen
WeLiveSecurity – Read More
It’s Amazon Prime Day, and smart home deals are everywhere. But don’t fall for any deal: these are the ones worth your time and money.
Latest news – Read More
Both Google and Amazon have generative AI-powered smart speakers for under $100, so which one stands out?
Latest news – Read More
Leaked files show the invite-only network grades members by their money and fame, shaping who’s in, who’s out, and who pays.
Security Latest – Read More
The threat group’s curious business model may combine opportunistic monetization alongside intel collection, without much coordination between the two.
darkreading – Read More
There is no one-size-fits-all cybersecurity laptop. We’ll examine real-world work scenarios, tool compatibility, and trade-offs that impact a security professional’s day-to-day work.
Hackread – Cybersecurity News, Data Breaches, AI and More – Read More
A leaked GitHub token underscores what most organizations get wrong: Treating secrets management as a tooling problem rather than an identity problem.
darkreading – Read More